Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Gentoo>
  3. Hardened
SELinux: portage_ro_role
aranea at aixah
Oct 15, 2015, 3:02 AM
Post #1 of 2 (1037 views)
Permalink
Hello,

our portage policy includes a portage_ro_role interface to allow
read-only access to portage data. As usual with _role interfaces,
according to the documentation the interface takes a role as the first
($1) and a type as the second argument ($2). However, the directives
in the interface actually expect $1 to be a type.

So, we should either
1) replace $1 with $2 inside the interface, or
2) rename the interface to something without _role and fix the
documentation.

Regards,
Luis Ressel
Re: SELinux: portage_ro_role [ In reply to ]
swift at gentoo
Oct 18, 2015, 10:55 AM
Post #2 of 2 (1018 views)
Permalink
On Thu, Oct 15, 2015 at 12:02:41PM +0200, Luis Ressel wrote:
> our portage policy includes a portage_ro_role interface to allow
> read-only access to portage data. As usual with _role interfaces,
> according to the documentation the interface takes a role as the first
> ($1) and a type as the second argument ($2). However, the directives
> in the interface actually expect $1 to be a type.
>
> So, we should either
> 1) replace $1 with $2 inside the interface, or
> 2) rename the interface to something without _role and fix the
> documentation.

My suggestion is to go with 1 - fix the use of the $1 and $2 parameters.

Wkr,
Sven Vermeulen

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal